Apple Macos Ventura vulnerabilities

CVE-2023-42891 [MEDIUM] CVE-2023-42891: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42891 Component: IOKit Impact: An app may be able to monitor keystrokes without user permission Description: An authentication issue was addressed with improved state management.

CVE-2023-42884 [MEDIUM] CVE-2023-42884: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42884 Component: AVEVideoEncoder Impact: An app may be able to disclose kernel memory Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-42919 [MEDIUM] CVE-2023-42919: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42919 Component: Accounts Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-42952 [MEDIUM] CVE-2023-42952: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42952 Component: Automation Impact: An app with root privileges may be able to access private information Description: The issue was addressed with improved checks.

CVE-2020-19186 [MEDIUM] CVE-2020-19186: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2020-19186 Component: CVE-2020-19186

CVE-2023-42836 [MEDIUM] CVE-2023-42836: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42836 Component: Sandbox Impact: An attacker may be able to access connected network volumes mounted in the home directory Description: A logic issue was addressed with improved checks.

CVE-2023-42924 [MEDIUM] CVE-2023-42924: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42924 Component: Archive Utility Impact: An app may be able to access sensitive user data Description: A logic issue was addressed with improved checks.

CVE-2023-42896 [MEDIUM] CVE-2023-42896: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42896 Component: Assets Impact: An app may be able to modify protected parts of the file system Description: An issue was addressed with improved handling of temporary files.

CVE-2020-19190 [MEDIUM] CVE-2020-19190: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2020-19190 Component: CVE-2020-19190 Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: An access issue was addressed with improvements to the sandbox.

CVE-2023-42838 [MEDIUM] CVE-2023-42838: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42838 Component: CVE-2020-19190 Impact: An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges Description: An access issue was addressed with improvements to the sandbox.

CVE-2023-42914 [MEDIUM] CVE-2023-42914: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42914 Component: Kernel Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved memory handling.

CVE-2023-42936 [MEDIUM] CVE-2023-42936: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42936 Component: Sandbox Impact: An app may be able to access user-sensitive data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2020-19185 [MEDIUM] CVE-2020-19185: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2020-19185 Component: CVE-2020-19185

CVE-2023-42932 [MEDIUM] CVE-2023-42932: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42932 Component: TCC Impact: An app may be able to access protected user data Description: A logic issue was addressed with improved checks.

CVE-2023-42930 [MEDIUM] CVE-2023-42930: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42930 Component: Shell Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed with improved checks.

CVE-2020-19188 [MEDIUM] CVE-2020-19188: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2020-19188 Component: CVE-2020-19188

CVE-2023-42834 [MEDIUM] CVE-2023-42834: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-42834 Component: Find My Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved handling of files.

CVE-2023-41989 [MEDIUM] CVE-2023-41989: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-41989 Component: Emoji Impact: An attacker may be able to execute arbitrary code as root from the Lock Screen Description: The issue was addressed by restricting options offered on a locked device.

CVE-2023-3618 [MEDIUM] CVE-2023-3618: macOS Ventura 13.6.3 Apple Security Update: About the security content of macOS Ventura 13.6.3 Product: macOS Ventura Version: 13.6.3 CVE: CVE-2023-3618 Component: CVE-2023-3618 Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution Description: This issue was addressed with improved checks.

CVE-2023-42942 [HIGH] CVE-2023-42942: macOS Ventura 13.6.1 Apple Security Update: About the security content of macOS Ventura 13.6.1 Product: macOS Ventura Version: 13.6.1 CVE: CVE-2023-42942 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.